Watch Manifest and Carahsoft recent webinar titled 'Transparency in Tech: The Future with SBOM and AIBOM,' which focused on SBOM management for federal agencies and the DOD. During the webinar the speaker explained how to quantify third-party software risk, collect and consume SBOMs and gain insight into AI provenance at the FedRAMP High level. 

Agencies have already begun gaining valuable insights into their cyber supply chain risk through the collection and analysis of SBOMs. Maintaining a repository of software dependencies is critical to respond to the next software supply chain attack. 

In this session, you learned about:

• Best practices for collecting, analyzing, and monitoring SBOMs at a FedRAMP High (or equivalent level) from suppliers
• How SBOM can quantify your agency's third-party risk
• The latest research and development into securing AI supply chains with AIBOMs